Authorizing requests through spring gateway with zool via oauth server

My application has microservices behind (spring) gateway with zuul proxy. There is also internal (spring) oauth2 authorization server. I want to implement client_credentials grant type for my microservices calls from outside - for M2M communication.

When I configure for the gateway client_id and client_secret in its application.yml requests come through the gateway but there is no requester check - oauth authorizes the gateway itself, as a result there is no authorization at all. I could use authorization code grant type, but then it would require web-client authorization which (web client) user might not have.

If I request authentication token from the oauth microservice, I get correct token for this app.

How can I force the gateway use the requester's client_id and client_secret to get token from oauth? - e.g. I can provide them as basic authorization via header. Or can I provide to the gateway the token obtained by the requester from oauth?

The question is very similar to another one: Implementing authentication and authorization using Zuul Proxy, Oauth2 on REST Microservices except the thing that there might be no web client, but an external microservice.

server: port: 8080 zuul: sensitiveHeaders: Cookie,Set-Cookie # <--- this line routes: spring-security-oauth-resource: path: /spring-security-oauth-resource/** url: http://localhost:8081/spring-security-oauth-resource oauth: path: /oauth/** url: http://localhost:8083/spring-security-oauth-server/oauth

Recommended topics

Hot tags